Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
File: idvHFWpO58Z9nmhHZ6L0uvijW6s.mft (raw, json)
Hash identifier: vvg1cKqxgduKCGXSBIIv5MhE9dI8C2+FJLf6ubj2gKM=
Subject key identifier: 33:0C:B3:30:20:09:CA:4E:0B:FB:12:89:D7:AD:F1:00:AA:E5:6B:3C
Authority key identifier: 89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB
Certificate issuer: /CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab
Certificate serial: 019CAD22DF4EBB5E38F402B3052F7F40CA27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
Manifest number: 184D
Signing time: Mon 02 Mar 2026 06:01:09 +0000
Manifest this update: Mon 02 Mar 2026 06:01:09 +0000
Manifest next update: Tue 03 Mar 2026 06:01:09 +0000
Files and hashes: 1: 0CdqlW01ACbv3EQD2O6eNsK9tUw.asa (hash: 9WhwZoBfEGd5k4zvC4ZA/vr5vp3EXDon/OkKYutAIU0=)
2: GBd4rVL5dJN0-9cuwhBBwNEyoV0.roa (hash: iRjXs3gr4L7byQxpcKRUar4Pisuwylgwnacqi0QdLQQ=)
3: PLZ1UvYELfgIKPLrh6OHNKK9acc.roa (hash: Shni7jpvErA8s5MzWpDHouyJxJ3M6Tbya9IWgb+KMM8=)
4: idvHFWpO58Z9nmhHZ6L0uvijW6s.crl (hash: 33aseipgkUARfUelfzEynmeUsbBqujcf3L262+A1LZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:df:4e:bb:5e:38:f4:02:b3:05:2f:7f:40:ca:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab
Validity
Not Before: Mar 2 06:01:09 2026 GMT
Not After : Mar 3 06:01:09 2026 GMT
Subject: CN=330cb3302009ca4e0bfb1289d7adf100aae56b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:24:83:c3:58:6d:97:31:8f:db:79:79:ea:1b:
14:d5:1e:35:29:89:69:24:32:b1:54:63:e7:0f:46:
e4:6f:62:8f:75:68:79:11:5a:d8:e2:0c:36:25:a8:
39:36:bf:54:53:3e:4a:28:ad:f5:cf:9e:ba:ca:1a:
70:4d:ce:d3:ec:d8:0f:37:4f:9a:2a:50:ae:91:fb:
c2:8f:07:89:66:b6:bd:ec:36:6e:94:72:bf:39:06:
2c:fc:04:eb:8c:d0:12:df:e4:06:41:24:e4:bf:e4:
0f:88:96:2f:15:4f:a9:48:02:4a:6b:f4:c8:98:bb:
d8:cd:4c:bc:52:91:aa:c4:fa:ed:1a:47:36:35:d4:
db:a4:83:dd:ae:ed:43:a0:94:85:8b:1d:ed:fa:87:
b1:dc:3e:10:0c:69:be:60:83:86:3c:c2:85:08:bf:
56:c9:e3:1e:e5:85:3a:31:db:93:68:a2:62:26:e7:
dc:3f:1f:c8:89:bd:ed:1a:55:a2:3e:0d:35:4e:18:
04:2d:a9:8f:0b:62:72:41:71:b3:f5:18:57:a7:e9:
60:f0:ea:08:74:76:97:a3:6e:bb:23:5f:1f:4d:40:
51:ef:d1:d6:65:11:17:3b:b0:70:3b:31:8d:10:78:
a4:ef:f0:2a:ed:80:aa:b7:48:2d:be:09:d7:b9:b2:
60:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:0C:B3:30:20:09:CA:4E:0B:FB:12:89:D7:AD:F1:00:AA:E5:6B:3C
X509v3 Authority Key Identifier:
keyid:89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:3c:71:a3:7c:0b:47:55:fb:54:36:34:30:6d:ea:8c:54:25:
8e:5b:c7:9f:56:ec:bf:d5:a0:54:d8:9b:0f:12:22:74:0c:63:
db:e3:21:70:62:ff:54:dc:8e:f6:67:ad:0d:ed:3b:c6:86:a1:
c0:41:c9:10:6c:37:c7:b7:56:fd:fa:4b:32:e8:15:35:1c:ea:
c9:3f:e2:3a:71:dc:3e:a0:03:16:6a:23:fa:88:ab:43:02:65:
14:a7:6e:6e:38:62:eb:61:bb:e1:88:19:07:fa:8d:89:3e:48:
93:ee:20:a6:62:1f:8c:43:8b:83:c4:82:36:ef:e5:5e:0b:65:
44:4b:1e:89:08:e9:a8:2d:29:8f:94:de:26:4c:c5:73:6d:d3:
79:0c:f7:30:b3:3f:dc:5c:d5:49:5d:07:75:0d:60:e7:2e:f8:
bb:90:dd:07:1f:dd:83:56:70:22:69:b8:24:b1:90:d3:37:af:
e6:0b:fb:a0:52:6f:0c:aa:1a:ae:c2:17:99:71:f4:04:d9:2a:
b5:ef:35:e3:f5:5f:56:92:45:99:e2:51:ed:5c:bb:bb:d9:a1:
55:a4:d1:d0:b2:b8:2b:00:e0:01:db:4d:07:43:6c:fd:93:2d:
fb:d8:8a:1a:53:81:60:70:6c:c2:6d:24:02:a4:dc:c8:98:7b:
49:32:95:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:19:54 2026 by rpki-client